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METHOD AND SYSTEM FOR SERVER MANAGEMENT PLATFORM 

INSTRUMENTATION 




5 BACKGROUND OF THE INVENTION 

1 . Field of the Invention 

This invention relates in general to network server management. Specifically, 
this invention relates to methods and systems for remotely managing a network 
server. 

10 

30, 

) 

2. General Background and Related Art 

Computer systems are often managed by monitoring system health 
information, which reflects the operational status* of various hardware components 
such as a processor and memory. The health information of a server may be made 
15 available through various sensors embedded in the motherboard of the server. 

Server management products currently allow system administrators to observe 
health information through a console. In addition, system administrators can use the 
console to take various preemptive actions in response to particular health 
information. Such actions may include shutting down, rebooting, and powering off a 
20 server. Some products also send electronic mail messages to system administrators 
at predefined destinations in response to certain health conditions of a server. 

Such messages merely inform an administrator of the server's health status. 
Upon receiving an e-mail message reporting a severe problem within a server, an 
administrator may have to physically go to the location of the server management 
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management console in order to take preemptive action. When an administrator 
is far away from the console, such as at a remote site, it is often impossible for the 
administrator to take any action to protect the server. 

Therefore, what is needed is a method and system that enables system 
5 administrators to take action remotely based on the health status of a server. 



BRIEF DESCRIPTION OF THE DRAWINGS 

FIG. 1 is a block diagram illustrating a system according to an embodiment 

£3 

10 of the present invention. 
=t FIG. 2 is a block diagram illustrating a mail agent according to an 

embodiment of the present invention. 
™* FIG. 3 is a block diagram illustrating a system according to an embodiment 

ry of the present invention. 

CO 15 FIG. 4 is a flow diagram illustrating a method according to an embodiment 

O of the present invention. 

FIG. 5 is a flow diagram illustrating a method according to an embodiment 
of the present invention. 



20 

DETAILED DESCRIPTION 

The following detailed description refers to the accompanying drawings that 
illustrate exemplary embodiments of the present inventions. Other embodiments are 
possible and modifications may be made to the embodiments without departing from 
25 the spirit and scope of the invention. Therefore, the following detailed description is 
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possible and modifications may be made to the embodiments without departing from 
the spirit and scope of the invention. Therefore, the following detailed description is not 
meant to limit the invention. Rather, the scope of the invention is defined by the 
appended claims. 

5 It will be apparent to one of ordinary skill in the art that the embodiments as 

described below may be implemented in many different embodiments of software, 
firmware, and hardware in the entities illustrated in the figures. The actual software 
code or specialized control hardware used to implement the present invention is not 
limiting of the present invention. Thus, the operation and behavior of the 

10 embodiments will be described without specific reference to the actual software code 
or specialized hardware components. The absence of such specific references is 
feasible because it is clearly understood that artisans of ordinary skill would be able 
to design software and control hardware to implement the embodiments of the 
present invention based on the description herein with only a reasonable effort and 

15 without undue experimentation. 

Moreover, the processes associated with the presented embodiments may be 
stored in any storage device, such as, for example, a computer system (non-volatile) 
memory, an optical disk, magnetic tape, or magnetic disk. Furthermore, the 
processes may be programmed when the computer system is manufactured or via a 

20 computer-readable medium at a later date. Such a medium may include any of the 
forms listed above with respect to storage devices and may further include, for 
example, a carrier wave modulated, or otherwise manipulated, to convey instructions 
that can be read, demodulated/decoded and executed by a computer. 
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A system and method for managing a server using remote intelligent mail 
messages, as described herein, involves receiving, by a mail agent, an electronic 
mail message sent by a user. The message requests a service relevant to a server. 
The message is deciphered to understand the nature of the service requested by the 
5 user. If it is determined that the user has a privilege to obtain the service, then the 
mail agent performs the service to produce a service outcome. 

FIG. 1 is a block diagram illustrating system 100 according to an embodiment 
of the present invention. System 100 comprises client 110 and server 120. Server 
120 comprises mail agent 130 and health information 140. 

10 Client 110 communicates with mail agent 130 via a network connection, such 

as a wireless Internet or intranet connection. Alternatively, client 110 may 
communicate with mail agent 130 via a local area network (LAN) connection with 
cabling. Client 110 may comprise, for example, a remote computer at an airport, a 
cellular phone, or a wireless handheld device. Client 110 enables a user 150 to send 

15 an e-mail message to mail agent 130, and to receive an e-mail message from mail 
agent 130. A network administrator or other such user 150 may wish to send and 
receive messages using client 110 in order to access functions performed by mail 
agent 130;, 

Server 120 is configured to make health information 140 available. Health 
20 information 140 may include health of various hardware components of server 120, 
including processor, memory, fans, etc. Such health information 140 may be made 
available via various sensors that may be embedded in a motherboard of server 120. 
Based on the provided health information 140, user 150 may take preemptive 
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actions, such as to shut down the server, reboot the server, and power off the server. 
In short, via e-mail, a network administrator may have access to complete server 
status information, manipulate the state of server 120, and take remedial actions. 

Mail agent 130 may run on server 120. Mail agent 130 may receive an e-mail 
5 message sent by user 150. The e-mail message may request a service relevant to 
server 120. Mail agent 130 may decipher the e-mail message to understand the 
nature of the service requested by user 150. If mail agent 130 determines that user 
150 has the privilege required to obtain the service, mail agent 130 may perform the 
,g service to produce a service outcome. E-mail messages sent by user 150 and mail 
agent 130 may be encrypted by client 110 and mail agent 130, respectively. 

User 150 may belong to a set of categories, such as those embodied in an 
^ access control list (ACL). An ACL may divide users in a network comprising server 
m 120 into multiple categories, including administrators who may have complete access 
m to all information and functions available on server 120, and general users who may 
£315 only view information within server 120. User 150 may send an e-mail message to 
mail agent 130 from client 110. However, user 150 may also send an e-mail 
message from a console (not shown) on server 120 itself. 

FIG. 2 is a block diagram illustrating mail agent 130 according to an 
embodiment of the present invention. As shown, mail agent 130 may comprise mail 
20 handler 210, decipherer 220, privilege determiner 230, service performer 240, and 
encryptor/decryptor 250. 




gyMai t handl e r 210 may receive - a n e -mai l message s e nt by user 150. — MaU 



-handl e r 2 1 0 may constantly run on~"sef vor 320. Thuo, ma il hand l er 210 may roc oi vo 
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-S dnail messages sent by usoj^i r i O from c l ionl 310 n i anothgrstteh-cli gnt ^ny t i m Q 



^j^rvr^ if on y, r^q.io^toH 150 Such deciphering- niay include parsirrg-4he-e- 

mail m e ss a ge tn ^vtr a ^t Qponifir ^nmm^nH s j ^ued hy user 15Q 
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exchange messages and information between client_3JJX-^m^ agent 130. 
^ Preformatted messages may in^4e--Cornmands to execute actions, commands to 
enumerate sJatos^Tnformation, and commands to set various parameters, such as 
feeh o t ds l o i di lleienl bensu is embed d ed i i r a motner ouaid u f a i »ui vu i . 




^ q ^r i vi l ogo dotorminor 230 dotorm i noc whothor uoor 150 i o author i zod to^bt g 
a service that user 150 has requested. As such, privilege detgwwrler 230 may first 
%n examine security credentials embodied in the e^jiaifmessage or associated with the 
f U sender of the message, authentipat^the user, and verify that the user has the 
m requisite access privH^g^Privilege determiner 230 may consult an ACL that may be 
□ 15 stored irvs^rver 320 or another such server. In view of information in the ACL, 
]p^rlrTfTfnTnpr PHD mny Hrndr" whrthrr ii'J I 1 n t0 h.irthr privilege rcqu'^d-for 
threrseFviser 

. Ma il agont 130 may i nc l ud e encryptor/ d ecryptor 2 50 . Preform att ed message s 
that may be exchanged between client 310 and mail agenM-30Triay be encrypted 
20 and decrypted at source and destination^j^speStively. Such a security measure may 
ensure that a security not occur if an unauthorized person attempts to 

monitor^tfa^Tsmissions between user 150 and mail agent 130, or if an unauthorized 
<^user attem pts tn - innun nnruine rpq ij ftsts. 
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Service performer 240 may perform a service requested by an authorized user 
150 to produce a service outcome. In an exemplary embodiment, service performer 
240 may contact server 120, obtain health information from server 120, and generate 
a service outcome by composing a health information report based on the obtained 
5 health information. 

A service requested by user 150 may include any service that may be 
performed by mail agent 130 and supported by the configuration of server 120. For 
instance, service performer 240 may inquire as to the health information associated 
with server 120, including memory usage, or take action on server 120, such as 
10 rebooting server 120. 

Additionally, in other embodiments, service performer 240 may connect to a 
server to which the service pertains, execute an action on the server, determine the 
effect of the action on the server, and generate a service outcome based on the 
effect. Mail agent 130, via mail handler 210, may then generate a return e-mail 
15 message based on the service outcome, and send that message, in encrypted form, 
to user 150 as a reply to user 150. 

FIG. 3 is a block diagram illustrating system 300 according to another 
embodiment of the present invention. System 300 comprises client 310, server 320, 
server 330, and server 340. Mail agent 350 runs on server 320, but service 
20 outcomes are performed with respect to server 330 and server 340, which may 
include servers within a network including server 320. It is to be understood that a 
network may include multiple servers, such as server 330 and server 340, which may 
be accessible to mail agent 350. 
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In this embodiment, user 150 from client 310 may send an e-mail message to 
mail agent 350 requesting a service. The e-mail message may specify whether the 
service requested relates to a specific server, such as server 330, server 340, or 
another computer within a network, or whether the service is applicable to one or 
5 more specific servers within the network, or to all such servers. Mail agent 350, 
using mechanisms such as those described above, may decipher the e-mail 
message to ascertain the nature of the service requested by the user, and perform 
the service if user 150 has the requisite privilege to obtain that service. Mail agent 
350 may produce a service outcome by performing the service. 
,pl0 FIG. 4 is a flow diagram illustrating method 400 according to an embodiment 

of the present invention. In block B401, an e-mail message requesting a service is 
Ui received by a mail agent. The e-mail message is deciphered in block B410. In block 
:H B420, the method inquires whether the sender of the e-mail message has a privilege 
?5 to obtain the service requested. If the determination is no, then the method does not 
Ol5 execute further. If the determination is yes, then in block B430, the service is 
performed, and the method ends. 

FIG. 5 illustrates method 500 according to another embodiment of the present 
invention. In block B501, health information about a server is obtained. In block 
B510, a mail agent may generate a first e-mail message using that health 
20 information. In block B520, the first message may be sent to a user. In block B530, 
the mail agent may receive a second e-mail message from the user which requests a 
particular service. The second message is deciphered in block B540. In block B550, 
the method determines whether the user has the requisite privilege to obtain the 
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service. If the determination is no, then the method ceases. If the determination is 
yes, then in block B560, the service requested by the user is performed. 

The foregoing description of the preferred embodiments is provided to enable 
any person skilled in the art to make or use the present invention. Various 
5 modifications to these embodiments are possible, and the generic principles 
presented herein may be applied to other embodiments as well. For instance, to 
maintain security, the system and method described above may include security at 
multiple levels, including domain registration, user ID/password registration, 
encryption/decryption, predefined command formats, and inclusion of authentication 
10 packets in command messages. 

Moreover, the invention may be implemented in part or in whole as a hard- 
wired circuit, as a circuit configuration fabricated into an application-specific 
integrated circuit, or as a firmware program loaded into non-volatile storage or a 
software program loaded from or into a data storage medium as machine-readable 
15 code, such code being instructions executable by an array of logic elements such as 
a microprocessor or other digital signal processing unit. 

As such, the present invention is not intended to be limited to the 
embodiments shown above but rather is to be accorded the widest scope consistent 
with the principles and novel features disclosed in any fashion herein. 
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